Connect Norwegian BankID with Auth0 through Criipto Verify

In this article

When you need to know the legal identity of your Norwegian users, your choice is BankID jointly offered by the Norwegian banks. The BankID technology by itself is rather complicated to integrate, but through the Criipto Verify service
you may avoid the integration trouble.

Below is an outline of the steps to get ready to accept Norwegian BankID logins, but you may also view a short screen cast at Criipto's website.

Process to use NOrwegian BankID in Production

While the technical integration complexity is simple, to use Norwegian BankID in production you will have to go through a formal process to
register and obtain the necessary certificate to identify yourself to your users.
More on this process can be found once you sign into the Criipto Verify service, and with the help of Criipto.

1. Create an account with Criipto Verify

2. Create an Application to point to Auth0

In Criipto Verify go to the Applications tab and create a new application by clicking the with Auth0 button.
Give it a meaningful name, select the domain and remember to enable NO BankID.

Click Save to open the next dialog.

3. Name the connection (prefix) as it will appear in Auth0

If you do not run off the public Auth0 service, enter the DNS name of the login tenant. Otherwise just leave the Auth0 tenant field as is.

Secondly enter a name to be used as the prefix for the connections created in Auth0.

Click Proceed.

4. Create new connections in Auth0

If you are not already logged in to Auth0 in this session, you will be prompted to do so in the popup window.

Once logged in you must grant Criipto Verify consent to create connections and read the applications.

If you have more than one Auth0 tenant, remember to select the right one in the dialog.

Click the check mark in the green area at the bottom to allow Criipto Verify to set up the connections.

5. Verify the connections

Go to the Connections > Enterprise section and open the ADFS connections to see the connections for Norwegian BankID created from the previous steps.

One connection has been created for each kind of authentication supported by Norwegian BankID: Browser based and mobile. The mobile method requires a special SIM card issued by a Norwegian provider.

Remember to enable at least one application before clicking the Try button! For more on test users see documentation on Criipto Verify.

6. Create your test users

With the above setup you will be ready to start testing. You will find a test user's credentials in your Criipto Verify tenant to start testing the web based flow. To get your own test users and to get the special SIM cards need to test the mobile flow, work with Criipto to sign up for production use of Norwegian BankID.

7. Enable production use

To start accepting real BankID logins from real legal persons, you must first enter into a formal agreement with a Norwegian bank through Criitpo. This process requires you to be a customer of said Norwegian bank.

Once this agreement is in place you will receive a certificate to upload to Criipto Verify. Go to the IDENTITY SERVICES tab and open the NO BankID section. This is where you will upload your organization's BankID certificate.